Robert Sesek [Sun, 18 Mar 2007 17:47:05 +0000 (17:47 +0000)]
r1500: In showhistory.php:
- Enable multi-group support for custom fields
- Do not show custom fields in the history if users don't have permission to see them
- When we have a useless log (the very first empty checks at the top of the loop), kill them with a database query
Robert Sesek [Sun, 18 Mar 2007 17:35:45 +0000 (17:35 +0000)]
r1499: In editreport.php:
- Only set the standard bug fields if we have permission to change them (thus data isn't cleared when we don't have permission to)
- When setting the bug data for the NotificationCenter, use array_merge() to combine objdata[] and values[] so it doesn't look like we cleared all the fields if we didn't set them
Robert Sesek [Sun, 18 Mar 2007 04:50:06 +0000 (04:50 +0000)]
r1493: In admin/product.php, move the page_start() call in the addversion branch to be after the check for invalid products so we don't end up with a small display bug if the error is thrown
Robert Sesek [Sun, 18 Mar 2007 04:45:39 +0000 (04:45 +0000)]
r1492: Apparently MySQL doesn't think that NULL values should be included in !parentid which causes not all the products to be displayed in the product-level permissions
Robert Sesek [Sun, 18 Mar 2007 04:37:55 +0000 (04:37 +0000)]
r1490: Fixing a SQL error in admin/usergroup.php that would occur when inserting a new usergroup and trying to INSERT INTO the permissions table for custom fields
Robert Sesek [Sun, 18 Mar 2007 01:26:46 +0000 (01:26 +0000)]
r1486: Adding API support for multiple usergroups in UserAPI. Because we verify in the API, we no longer need to call array_strip_empty() in FetchUserPermissions()
Robert Sesek [Sun, 18 Mar 2007 01:22:03 +0000 (01:22 +0000)]
r1485: - Adding base support for multiple user groups: schema changes, created FetchUserPermissions(), and an improved can_perform()
- In ProcessBugDataForDisplay() we can use less calls to can_perform when checking canviewhidden* permissions
Robert Sesek [Sat, 17 Mar 2007 19:36:03 +0000 (19:36 +0000)]
r1479: Remove the need for $stylevar[alt_color] by using the altcolor CSS class by changing the values swapped when calculating rows and using trackerhome_bits.tpl
Robert Sesek [Sat, 17 Mar 2007 19:16:04 +0000 (19:16 +0000)]
r1474: We no loner need the stylevars for cellpadding and cellspacing in tables because we can use CSS properties to achieve the same effect. Removing all the long <table> declarations and just replacing them with styling table with the .table class
Robert Sesek [Sat, 17 Mar 2007 18:42:26 +0000 (18:42 +0000)]
r1473: Because we didn't understand the return val of eval() all our notifications were blank. Fixing by moving all the eval() statements to not be in the assignment operation in NotificationCenter.
Robert Sesek [Sat, 17 Mar 2007 18:25:02 +0000 (18:25 +0000)]
r1471: Fix for bug://report/69: In install/global.php, move the loading of the includes/language.php to be higher up so that the gettext emulation system is enabled sooner
Robert Sesek [Sat, 17 Mar 2007 16:08:45 +0000 (16:08 +0000)]
r1470: Fix two bugs with searching that would:
- Delete the current search if it were ever to be rerun
- Not update the timestamp on cached searches which would cause them to be rerun every time
Robert Sesek [Sat, 17 Mar 2007 15:52:02 +0000 (15:52 +0000)]
r1468: In mailtest.php:
- Check the validity of email addresses before sending
- Make the sending from a non-existent address more effective and meaningful
Robert Sesek [Fri, 16 Mar 2007 02:27:22 +0000 (02:27 +0000)]
r1466: Fixing a bug in NotificationCenter::send_new_comment_notice() where we weren't getting the userid because we were accessing strings and not the $userid variable
Robert Sesek [Sun, 11 Mar 2007 23:20:53 +0000 (23:20 +0000)]
r1449: One last change for class_sort.php that now will make _processDataForColumn() work by changing 'userid' to 'reporter' in step with the previous change from r1444
Robert Sesek [Sun, 11 Mar 2007 22:56:20 +0000 (22:56 +0000)]
r1444: In all other instances for sorting, the sortby key for reporter is reporter, not userid, so have includes/premissions (and thereby $bugsys->columns and $bugsys->columnNames) reflect that
Robert Sesek [Sun, 11 Mar 2007 21:44:23 +0000 (21:44 +0000)]
r1440: - Fixed a huge bug in Authentication::_syncBugdarUser() that would use the authid as the user ID in the Bugdar database as the condition when syncing
- Only call Authenticatoin::clearCookies() in Autthentication::authenticateCookies() if the cookie data fails to verify, and not in other cases
Robert Sesek [Sun, 11 Mar 2007 05:58:41 +0000 (05:58 +0000)]
r1435: Fixed a bug in Authentication that could potentially cause the Bugdar user to be synced every time due to the fact that the values in bugdarUser[] aren't filled
Robert Sesek [Mon, 5 Mar 2007 04:37:29 +0000 (04:37 +0000)]
r1427: More work on the authentication system:
- Adding a list of fields that will be synced between Bugdar and the auth db
- Authentication::_createBugdarUser() is now implemented in the abstract class because we have a sync-fields list
- Authentication::_syncBugdarUser() is responsible for syncing the already-created Bugdar user with the user in the auth db
Robert Sesek [Tue, 27 Feb 2007 04:29:25 +0000 (04:29 +0000)]
r1426: When using USE_DEFAULT_AUTH_METHOD, we don't actually want to change the value in $bugsys->options[] because that means we can't see what the current value of the setting is
Robert Sesek [Tue, 27 Feb 2007 04:25:41 +0000 (04:25 +0000)]
r1425: - The new vBulletin authentication API now works
- If you define the USE_DEFAULT_AUTH_METHOD as 1 then Bugdar will ignore any authentication system set and will just the Bugdar database
Robert Sesek [Mon, 26 Feb 2007 21:38:54 +0000 (21:38 +0000)]
r1422: Authentication API:
- Allowing Authentication::_setCookies() to have a $sticky flag to make
the cookies permanent
- Implementing the login methods in AuthenticationDefault and setting
them up in login.php
Robert Sesek [Mon, 26 Feb 2007 03:55:57 +0000 (03:55 +0000)]
r1420: More work on the authentication system:
- Added the authmethod setting to allow the admin to choose what authentication system to use
- In init.php, we now use the authentication API to validate the cookies
- Added Authentication::fetchBugdarUser() and fixed a small parse error
Robert Sesek [Wed, 14 Feb 2007 19:48:17 +0000 (19:48 +0000)]
r1409: Implemented a new admin login system: Instead of using a date-stamped cookie, a random hash is generated upon login and then this is stored in the cookie. It only lasts for one hour and it has to be validated against the database, making it much harder to break into.
Robert Sesek [Tue, 13 Feb 2007 20:25:08 +0000 (20:25 +0000)]
r1405: Beginning to move email text out of the code and into templates. This is done for the registration system, but bug change notifications still need to be done.
Robert Sesek [Tue, 13 Feb 2007 07:54:57 +0000 (07:54 +0000)]
r1403: - Fixed a bug in UserAPI::post_update() that would clear bug.username, bug.lastpostbyname, and bug.hiddenlastpostname if the displayname wasn't set
- Reduce needless querying by not calling build_assignedto() in UserAPI::post_update() unless the displayname or email changes